hohn/codeql
1
0
Fork 0
mirror of https://github.com/github/codeql.git synced 2026-04-30 03:05:15 +02:00
Code Issues Packages Projects Releases Wiki Activity

Change note

Browse Source
This commit is contained in:
Ed Minnix
2024-03-05 22:27:54 -05:00
parent f8c805de6b
commit 1f64f5f8c9
1 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
csharp/ql/lib/change-notes/2024-03-05-new-commandargs-and-environment-models.md Normal file
View File

@@ -0,0 +1,5 @@
---
category: minorAnalysis
---
* The .NET standard libraries APIs for accessing command line arguments and environment variables have been modeled using the `commandargs` and `environment` threat models.
* The `cs/assembly-path-injection` query has been modified so that it's sources rely on `ThreatModelFlowSource`. In order to restore results from command line arguments, you should enable the `commandargs` threat model.